1.Wincc OA does not determine which Active Directory group an Active Directory user belongs to.
I see Active Directory groups in the user management window.
User group names in Active Directory use Cyrillic characters. After renaming groups to using Latin alphabet the problem persisted.
2.Single Sign-On does not work
WinCC OA allows a domain user to log in through the authorization window "vision\login.pnl"
3.Can't figure out how to run the Gedi module as an Active Directory user
The name of the Active Directory server does not match the name of the WinCC OA computer
PS
WinCC OA 3.16 P015
Active Directory on Windows Server 2016
WinCC OA on Windows 10 Pro
Problem width using of Active Directory users and groups of users
- Victor.Ermakov
- Posts:25
- Joined: Fri Oct 20, 2017 8:50 am
Problem width using of Active Directory users and groups of users
- mplatz
- Posts:9
- Joined: Mon Oct 29, 2018 9:00 am
Re: Problem width using of Active Directory users and groups of users
Dear Customer,
1.Wincc OA does not determine which Active Directory group an Active Directory user belongs to.
I see Active Directory groups in the user management window.
User group names in Active Directory use Cyrillic characters. After renaming groups to using Latin alphabet the problem persisted.
[ETM]:
-groups can be loaded and found in the group administration (see AD_1.png)
-also be aware: groups only loaded when a AD-User logging into the system the first time (e.g. -p vision/login.pnl)
--after the login -> in the groups administration (see AD_2.png) all groups added which are linked in the AD with the user
-for the cyrillic characters / latin alphabet please open a ticket in our Siemens Support Portal with a more detailed descrption and screenshots (informations can be found below)
2.Single Sign-On does not work
WinCC OA allows a domain user to log in through the authorization window "vision\login.pnl"
[ETM]:
-First be sure the user has no group with the USERBIT4! (see AD_3.png)
-afterwards the computer needs to be added with the BIT32 set (see AD_4.png)
3.Can't figure out how to run the Gedi module as an Active Directory user
[ETM]:
If the user has the proper permissions
e.g.
-add UI-Manager to the console
-add start-parameter: -m gedi -user USERNAME
!BE AWARE!
The user needs to login once with "-p vision/login.pnl" (otherwhise the user does not exist in WinCC-OA)
The name of the Active Directory Server does not match the name of the WinCC OA computer
[ETM]:
Not sure about what you actually mean.
--Also please use our Support Portal and upload screenshots and a more detailed description.
For our Ticket-System please use following Link:
https://support.industry.siemens.com/cs ... t&lc=de-WW
kr,
Platzer Matthias
1.Wincc OA does not determine which Active Directory group an Active Directory user belongs to.
I see Active Directory groups in the user management window.
User group names in Active Directory use Cyrillic characters. After renaming groups to using Latin alphabet the problem persisted.
[ETM]:
-groups can be loaded and found in the group administration (see AD_1.png)
-also be aware: groups only loaded when a AD-User logging into the system the first time (e.g. -p vision/login.pnl)
--after the login -> in the groups administration (see AD_2.png) all groups added which are linked in the AD with the user
-for the cyrillic characters / latin alphabet please open a ticket in our Siemens Support Portal with a more detailed descrption and screenshots (informations can be found below)
2.Single Sign-On does not work
WinCC OA allows a domain user to log in through the authorization window "vision\login.pnl"
[ETM]:
-First be sure the user has no group with the USERBIT4! (see AD_3.png)
-afterwards the computer needs to be added with the BIT32 set (see AD_4.png)
3.Can't figure out how to run the Gedi module as an Active Directory user
[ETM]:
If the user has the proper permissions
e.g.
-add UI-Manager to the console
-add start-parameter: -m gedi -user USERNAME
!BE AWARE!
The user needs to login once with "-p vision/login.pnl" (otherwhise the user does not exist in WinCC-OA)
The name of the Active Directory Server does not match the name of the WinCC OA computer
[ETM]:
Not sure about what you actually mean.
--Also please use our Support Portal and upload screenshots and a more detailed description.
For our Ticket-System please use following Link:
https://support.industry.siemens.com/cs ... t&lc=de-WW
kr,
Platzer Matthias
- Attachments
-
-
-
-